Closed Bug 594760 Opened 11 years ago Closed 11 years ago
Content in ns Event State Manager::Post Handle Event looks unsafe
The variable is nsIContent*, but scripts may run before it is used. I don't have a testcase, but based on code this might lead to crash when using image maps and deleting the image element when it gets focus. Or something like that.
Comment on attachment 473527 [details] [diff] [review] patch Approved for 188.8.131.52 and 184.108.40.206, a=dveditz
You need to log in before you can comment on or make changes to this bug.